KJCKorea
Journal Central

@article{ART002660820},
author={Joon Hyuk Yang and Ji Hwan Mo and Sung-Moon Hong and Doh, Kyung-Goo},
title={Detection of Source Code Security Vulnerabilities Using code2vec Model},
journal={Journal of Software Assessment and Valuation},
issn={2092-8114},
year={2020},
volume={16},
number={2},
pages={45-52}

TY - JOUR
AU - Joon Hyuk Yang
AU - Ji Hwan Mo
AU - Sung-Moon Hong
AU - Doh, Kyung-Goo
TI - Detection of Source Code Security Vulnerabilities Using code2vec Model
JO - Journal of Software Assessment and Valuation
PY - 2020
VL - 16
IS - 2
PB - Korea Software Assessment and Valuation Society
SP - 45
EP - 52
SN - 2092-8114
AB - Traditional methods of detecting security vulnerabilities in source-code require a lot of time and effort. If there is good data, the issue could be solved by using the data with machine learning. Thus, this paper proposes a source-code vulnerability detection method based on machine learning. Our method employs the code2vec model that has been used to propose the names of methods, and uses as a data set, Juliet Test Suite that is a collection of common security vulnerabilities. The evaluation shows that our method has high precision of 97.3% and recall rates of 98.6%. And the result of detecting vulnerabilities in open source project shows hopeful potential. In addition, it is expected that further progress can be made through studies covering with vulnerabilities and languages not addressed here.
KW - security vulnerability;SQL injection;security vulnerability detection tool;machine learning;static program analysis
DO -
UR -
ER -

Joon Hyuk Yang, Ji Hwan Mo, Sung-Moon Hong and Doh, Kyung-Goo. (2020). Detection of Source Code Security Vulnerabilities Using code2vec Model. Journal of Software Assessment and Valuation, 16(2), 45-52.

Joon Hyuk Yang, Ji Hwan Mo, Sung-Moon Hong and Doh, Kyung-Goo. 2020, "Detection of Source Code Security Vulnerabilities Using code2vec Model", Journal of Software Assessment and Valuation, vol.16, no.2 pp.45-52.

Joon Hyuk Yang, Ji Hwan Mo, Sung-Moon Hong, Doh, Kyung-Goo "Detection of Source Code Security Vulnerabilities Using code2vec Model" Journal of Software Assessment and Valuation 16.2 pp.45-52 (2020) : 45.

Joon Hyuk Yang, Ji Hwan Mo, Sung-Moon Hong, Doh, Kyung-Goo. Detection of Source Code Security Vulnerabilities Using code2vec Model. 2020; 16(2), 45-52.

Joon Hyuk Yang, Ji Hwan Mo, Sung-Moon Hong and Doh, Kyung-Goo. "Detection of Source Code Security Vulnerabilities Using code2vec Model" Journal of Software Assessment and Valuation 16, no.2 (2020) : 45-52.

Joon Hyuk Yang; Ji Hwan Mo; Sung-Moon Hong; Doh, Kyung-Goo. Detection of Source Code Security Vulnerabilities Using code2vec Model. Journal of Software Assessment and Valuation, 16(2), 45-52.

Joon Hyuk Yang; Ji Hwan Mo; Sung-Moon Hong; Doh, Kyung-Goo. Detection of Source Code Security Vulnerabilities Using code2vec Model. Journal of Software Assessment and Valuation. 2020; 16(2) 45-52.

Joon Hyuk Yang, Ji Hwan Mo, Sung-Moon Hong, Doh, Kyung-Goo. Detection of Source Code Security Vulnerabilities Using code2vec Model. 2020; 16(2), 45-52.

Joon Hyuk Yang, Ji Hwan Mo, Sung-Moon Hong and Doh, Kyung-Goo. "Detection of Source Code Security Vulnerabilities Using code2vec Model" Journal of Software Assessment and Valuation 16, no.2 (2020) : 45-52.